Roadmap

Last updated: Jul 17, 2026


We are excited to share our priorities and upcoming features, designed to enhance security, simplify workflows, and empower you with greater efficiency and transparency.

AI-powered vulnerability scanner (in progress)

Completed: We built an AI-powered SAST scanner that automates vulnerability detection previously requiring manual analysis. It identifies SQL injections and XSS, with over 90% precision at automation speed.

Current focus: We are enhancing detection accuracy (precision and recall) and expanding CWE coverage to support a broader range of vulnerability types (aka weaknesses).

Fluid Attacks' peer reviewer assistant (in progress)

Overview: A complementary security approach that provides AI-powered comments on your pull requests to help prevent vulnerability injection before code is merged. This functionality will be exclusively available on the Advanced plan.

Completed: Azure DevOps and GitLab integrations for SAST, SCA, and SS techniques are now available.

Current focus: Adding GitHub integration for SAST, SCA, and SS techniques.

Scope management improvements (in progress)

Completed: Enhanced mobile application environment registration workflow for better usability. Table filters for environments and files to improve navigation and management. Group creation redesign.

Current focus: Improving group workflow to make it clear that environments can be registered to groups.

Secret scanner enhancements (in progress)

Current focus: Strengthening our secret scanner to automatically support at least 400 distinct secret types.

Fraud team use case (in progress)

Current focus: Building a summarized vulnerability view tailored for fraud teams, enabling them to identify vulnerabilities that could be exploited to commit fraud in the organization and request their prioritization for remediation.

Rust language support (in progress)

Current focus: Adding Rust as a newly supported language for vulnerability detection.

Automated API DAST (in progress)

Current focus: Building an automated DAST scanner for APIs to extend dynamic analysis capabilities.

On this page